Malicious
Malicious

f1350880b2c999e49c55d662afefe717

AutoIt Compiled Script
|
MD5: f1350880b2c999e49c55d662afefe717
|
Size: 1.25 MB
|
application/x-dosexec

Print
General
Structural Analysis
Config.0
Yara Rules99+
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
f1350880b2c999e49c55d662afefe717
Sha1
79dd3b430ef667685af2c1b28895341a18629468
Sha256
611800d260a261ca41759e9c79312cdabe2529bc8fe362f296b348c5fa1a5c09
Sha384
672f23e5630e9d8ce8228b1448ca1479be5726e4008e1ec0d9cd01c53ff4fd14e1cc707bcb506198cbf9cc391f440eb7
Sha512
b55899197b543860a89175d8d8b7d9e8c3bf621b2eb76c583157c8221a63ae9343f5a24831692e6bb0d5012d79405765035ba7a65e6f5a12928065c5e035f547
SSDeep
24576:l5EmXFtKaL4/oFe5T9yyXYfP1ijXdaypayiU+19eSc6vjSbx/:lPVt/LZeJbInQRayMyiUw9eSdmb
TLSH
0E45CF0273C1D062FFAB92334F5AF6115ABC79260123AA2F13981D79BD705B1563E7A3

PeID

Microsoft Visual C++ 6.0 DLL (Debug)
Microsoft Visual C++ 8
Microsoft Visual C++ 8
Microsoft Visual C++ v6.0 DLL
UPolyX 0.3 -> delikon
VC8 -> Microsoft Corporation
File Structure
f1350880b2c999e49c55d662afefe717
Malicious
aut51FD.tmp.tok
Malicious
[Cleaned].au3
Malicious
Structure
DosHeader
PE Header
Optional Header (x86)
Section Headers
.text
.rdata
.data
.rsrc
.reloc
Resources
RT_ICON
ID:0001
ID:2057
ID:0002
ID:2057
ID:0003
ID:2057
ID:0004
ID:2057
ID:0005
ID:2057
ID:0006
ID:2057
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
ID:000A
ID:2057
ID:000B
ID:2057
RT_MENU
ID:00A6
ID:2057
RT_STRING
ID:0007
ID:2057
ID:0008
ID:2057
ID:0009
ID:2057
ID:000A
ID:2057
ID:000B
ID:2057
ID:000C
ID:2057
ID:0139
ID:2057
RT_RCDATA
ID:0000
ID:0
RT_GROUP_CURSOR4
ID:0063
ID:2057
ID:00A2
ID:2057
ID:00A4
ID:2057
ID:00A9
ID:2057
RT_VERSION
ID:0001
ID:2057
RT_MANIFEST
ID:0001
ID:2057
Informations
Name
 Value
Info

PE Detect: PeReader OK (file layout)
Info

PDB Path: t$di
f1350880b2c999e49c55d662afefe717 (1.25 MB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙